Cybersecurity News


Post-Breach, Peatix Data Reportedly Found on Instagram, Telegram

Post-Breach, Peatix Data Reportedly Found on Instagram, Telegram Events application Peatix this week disclosed a data breach, after user account information reportedly began circulating on Instagram and Telegram.
24 November 2020

Alexa, Disarm the Victim's Home Security System

Researchers who last year hacked popular voice assistants with laser pointers take their work to the next level.
24 November 2020

2FA bypass discovered in web hosting software cPanel

More than 70 million sites are managed via cPanel software, according to the company.
24 November 2020

‘Minecraft Mods’ Attack More Than 1 Million Android Devices

‘Minecraft Mods’ Attack More Than 1 Million Android Devices Fake Minecraft Modpacks on Google Play deliver millions of abusive ads and make normal phone use impossible.
24 November 2020

Cloud Security Startup Lightspin Emerges From Stealth

The startup, founded by former white-hat hackers, has secured a $4 million seed round to close security gaps in cloud environments.
24 November 2020

US Treasury's OFAC Ransomware Advisory: Navigating the Gray Areas

US Treasury's OFAC Ransomware Advisory: Navigating the Gray Areas Leveraging the right response strategy, following the regulations, and understanding the ransom entity are the fundamentals in any ransomware outbreak.
24 November 2020

What's in Store for Privacy in 2021

Changes are coming to the privacy landscape, including more regulations and technologies.
24 November 2020

Smart Doorbells on Amazon, eBay, Harbor Serious Security Issues

Smart Doorbells on Amazon, eBay, Harbor Serious Security Issues Matt Lewis, with NCC Group, talks to Threatpost about a slew of security and privacy issues found in smart doorbells that are being sold on Amazon and eBay.
24 November 2020

Baidu Apps in Google Play Leak Sensitive Data

Baidu Apps in Google Play Leak Sensitive Data Cyberattackers could use the information to track users across devices, disable phone service, or intercept messages and phone calls.
24 November 2020

Up to 350,000 Spotify accounts hacked in credential stuffing attacks

This won't be music to your ears – researchers spot an unsecured database replete with records used for an account hijacking spree

The post Up to 350,000 Spotify accounts hacked in credential stuffing attacks appeared first on WeLiveSecurity

24 November 2020

Printers' Cybersecurity Threats Too Often Ignored

Remote workforce heightens the need to protect printing systems against intrusion and compromise.
24 November 2020

Blackrota Golang Backdoor Packs Heavy Obfuscation Punch

Blackrota Golang Backdoor Packs Heavy Obfuscation Punch Blackrota is targeting a security bug in Docker, but is nearly impossible to reverse-analyze.
24 November 2020

Stantinko's Linux malware now poses as an Apache web server

Eight-year-old Stantinko botnet updates its Linux malware.
24 November 2020

Spotify launches ‘rolling reset’ on customer accounts, passwords linked to data leak

A third-party server containing Spotify credentials was uncovered by researchers.
24 November 2020

Tesla Hacked and Stolen Again Using Key Fob

Tesla Hacked and Stolen Again Using Key Fob Belgian researchers demonstrate third attack on the car manufacturer’s keyless entry system, this time to break into a Model X within minutes.
24 November 2020

Baidu's Android apps caught collecting sensitive user details

Data collection issue identified in Baidu Maps and Baidu Search Box apps, both removed from the Play Store in October 2020.
24 November 2020

New WAPDropper malware abuses Android devices for WAP fraud

New WAPDropper malware signs up Android users to premium services provided by telecoms in Thailand and Malaysia.
24 November 2020

SEC alleges Benja CEO duped investors to fund a non-existent e-commerce empire

The agency claims that business deals were made up to lure investors into funding the startup.
24 November 2020

Hacker leaks the user data of event management app Peatix

More than 4.2 million user accounts have been made available for download online earlier this month.
24 November 2020

'Antiquated process': data regulator on obtaining Cambridge Analytica warrant

'Antiquated process': data regulator on obtaining Cambridge Analytica warrant

UK information commissioner calls for international approach to emerging threat

The information commissioner has criticised the “antiquated process” that led to Facebook getting hold of Cambridge Analytica’s servers before the UK regulator itself, and renewed calls for an international approach to data privacy to tackle the emerging threat of data havens.

Elizabeth Denham, the information commissioner, spoke to Damian Collins MP, the former chair of the digital, culture, media and sport committee, who led the parliamentary enquiry into disinformation, on his podcast Infotagion. She described discovering that Facebook was inside the offices of defunct electioneering consultancy Cambridge Analytica while in the middle of an interview with Channel 4’s Jon Snow.

Continue reading...
23 November 2020